By jcbrew on
My company just spend $1000's upgrading several sites to Drupal 5.12.... Just wondering how critical is this latest upgrade. I would like to start skipping some of these upgrades but am not sure how "critical" the security vulnerabilities are in 5.12.
Thanks
Comments
Sorry to hear you have spent
Sorry to hear you have spent so much for upgrades. Critical? If it addresses security vulnerabilities, I personally would regard that as critical. Naturally, opinions will vary.
----------------------------------------------------------------------
http://classicvinyl.biz
http://music.bwv810.com
http://association.drupal.org/user/1207
That's a huge cost for such
That's a huge cost for such a minor upgrade. That's not to say that the upgrades are not critical, but for someone to pay that much money for an upgrade is ridiculous. I mean, I understand that the upgrade process isn't as easy of just clicking a button or anything, but it's not that hard either. I do it for my clients for free unless they have their own hosting. And if that's the case then I'll charge them a low hourly rate. My suggestion is find someone else...
We had SEVERAL (over ten)
We had SEVERAL (over ten) websites to upgrade. Now that we're past how much we were ripped off. Do you think it's critical to upgrade from 5.12 to 5.14?
No one can answer that
No one can answer that question for you-- read the release notes to understand what has changed and determine whether or not it's meaningful to your circumstances.
===
"Give a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime." - Lao Tzu
"God helps those who help themselves." - Ben Franklin
"Search is your best friend." - Worldfallz
WorldFallz - Thank you for
WorldFallz - Thank you for the link.
In my opinion all upgrades
In my opinion all upgrades are considered critical—especially if they're marked as a security update. In any situation your priority should be to update any security holes when the update is available. In the future it would definitely be a good ideal to read the release notes for each release and determine whether it's crucial or not.
In an ideal world this is
In an ideal world this is absolutely true. However, in the real world with limited resources, not so much.
For example, on my intranet sites (completely behind a firewall) I'm not terribly worried about cross site scripting attacks. With my limited time and maintenance windows, I'll often not upgrade until there's a functional (user facing) reason to do so. If i have cross site scripting attacks on an intranet site, there are far more important HR issues that need to be handled that have nothing to do with the website, lol.
===
"Give a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime." - Lao Tzu
"God helps those who help themselves." - Ben Franklin
"Search is your best friend." - Worldfallz
$ 1000's for upgrading? I do
$ 1000's for upgrading? I do it for 50% ...
======
There are 10 people who can count binary
They who can and they who don't